- Security and bugfix release 9.4.5: * CVE-2015-5289, bsc#949670: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. * CVE-2015-5288, bsc#949669: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed. - For the full release notse, see:http://www.postgresql.org/docs/current/static/release-9-4-5.html - Relax dependency on libpq to major version.

Patch Instructions:

To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: